The Defense Advanced Research Projects Agency (DARPA) recently launched a program to develop a framework for implementing cybersecurity into chips' microarchitecture.DARPA's System Security Integrated Through Hardware and Firmware (SSITH) program promotes cyber-protection at the hardware and circuit level rather than software-based security patches.It encourages system-on-chip (SoC) designers to develop hardware design tools that provide security against hardware vulnerabilities that are exploited through software in U.S. Department of Defense (DoD) and commercial electronic systems.In addition, the SSITH program is designed to address seven hardware vulnerability classes:Researchers have documented at least 2,800 software breaches that have taken advantage of one or more of these hardware vulnerabilities, SSITH Program Manager Linton Salmon said in a prepared statement.As such, eliminating these hardware weaknesses would remove more than 40 percent of the software doors available to cybercriminals, according to Salmon.
A Closer Look at the SSITH Program
The SSITH program emphasizes two technical areas:- Development and demonstration of hardware architecture that protects against hardware vulnerabilities, along with design tools the electronics community would need for including hardware-based security innovations in their design and manufacturing practices.
- Use of methodologies and metrics for measuring the security status of new electronic systems and any trade-offs in terms of system performance, power needs and efficiency, circuit area and other standard circuit features.
- Buffer errors.
- Code injection.
- Crypto errors.
- Information leakage.
- Numeric errors.
- Permissions and privileges.
- Resource management.




